Microsoft Support & Discussions
Free PC Help Forum microsoft products support and discussions. If you need help with Microsoft Windows, Windows Server software, Microsoft 365, Microsoft Azure or any other Microsoft product you can post here. If you want to discuss Microsoft and their line of products you can do that here also.
84,740 topics in this forum
-
MS17-022 - Important: Security Update for Microsoft XML Core Services (4010321) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 45 views
Severity Rating: Important Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if a user visits a malicious website. However, in all cases an attacker would have no way to force a user to click a specially crafted link. An attacker would have to convince a user to click the link, typically by way of an enticement in an email or Instant Messenger message. Continue reading...
-
March 2017 security update release
by Guest MSRC Team- 0 replies
- 47 views
Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. Security bulletins were also published this month to give customers extra time to ensure they are ready to transition their processes. MSRC team Continue reading...
-
MS17-019 - Important: Security Update for Active Directory Federation Services (4010320) -...
by Guest Microsoft Security- 0 replies
- 46 views
Severity Rating: Important Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves a vulnerability in Active Directory Federation Services (ADFS). The vulnerability could allow information disclosure if an attacker sends a specially crafted request to an ADFS server, allowing the attacker to read sensitive information about the target system. Continue reading...
-
MS17-020 - Important: Security Update for Windows DVD Maker (3208223) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 41 views
Severity Rating: Important Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves an information disclosure vulnerability in Windows DVD Maker. The vulnerability could allow an attacker to obtain information to further compromise a target system. Continue reading...
-
MS17-023 - Critical: Security Update for Adobe Flash Player (4014329) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 45 views
Severity Rating: Critical Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. Continue reading...
-
MS17-016 - Important: Security Update for Windows IIS (4013074) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 42 views
Severity Rating: Important Revision Note: V1.0 (March 14, 2017): Click here to enter text. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker with access to the local system executes a malicious application. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Continue reading...
-
MS17-006 - Critical: Cumulative Security Update for Internet Explorer (4013073) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 48 views
Severity Rating: Critical Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts w…
-
- 0 replies
- 1 view
Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. Security bulletins were also published this month to give customers extra time to ensure they are ready to transition their processes.
Last reply by PCHF Staff, -
- 1 follower
- 0 replies
- 703 views
The phones came with malware, ransomware, adware installed Somewhere in the supply chain of some Android phones that reached two companies, there was a weak link which allowed 38 devices to become infected with malware. According to Check Point Software Technologies, several malware types were found on 38 Android devices that landed on the doorstep of two unidentified companies. The malicious apps weren't part of the official ROM firmware supplied by phone manufacturers but were added later, somewhere along the supply chain. Researchers say that in six of the cases, malware was present installed to the ROM using system privileges. All these devices had to g…
Last reply by starbuck, -
- 1 follower
- 0 replies
- 744 views
The app was spotted on a third party app store A version of Facebook Lite circulating on third-party app stores is infected with Spy FakePlay Trojan. Instead of coming from Facebook, the app was actually developed by some people in China. According to researchers from Malwarebytes Labs, this version of the popular mobile app Facebook Lite, which is a more compact version of the original app, using less data, was found infected with Android/Trojan.Spy.FakePlay. The app works just as it is supposed to, but there's that extra malicious activity working in the background that kind of hampers the mood. The fake app uses a malicious receiver (com.google.update…
Last reply by starbuck, -
- 1 follower
- 0 replies
- 701 views
Both earn their money in the advertising trade but they each have very different means of operation and targets. Adware and ad fraud are in basically the same business, and neither care very much how they make money as long as it keeps pouring in. But there are some major differences. To understand these differences let’s take a look at the separate entities. Adware Adware is any software application that shows advertisements while one of the components of the adware is running. The word is a contraction of advertising and software, and often just regarded as “advertising-supported freeware.” With adware, consumers accept the well-known trade off of not …
Last reply by starbuck, -
- 1 follower
- 0 replies
- 658 views
Someone leaked the decryption keys for the program online Computer users who have been affected by the Dharma ransomware and have held onto their encrypted files can now restore them for free. Researchers have created decryption tools for this ransomware strain after someone recently leaked the decryption keys. Dharma first appeared in November and is based on an older ransomware program known as Crysis. It's easy to recognize files affected by it because they will have the extension: .[email_address].dharma, where the email address is the one used by the attacker as a point of contact. On Wednesday, a user named gektar published a link to a Pastebin post…
Last reply by starbuck, -
Now Available! Windows Server Premium Assurance – Six more years of support
by Guest Microsoft Windows Server- 0 replies
- 62 views
This post was authored by the Windows Server Team. Today we are announcing the general availability of Windows Server Premium Assurance with which you can add the flexibility to keep systems running without disruption as you modernize. When you purchase Premium Assurance, you receive “critical” and “important” security updates and bulletins for six additional years after the end of Extended Support. This means you can get up to 16 years of total support beginning from Windows Server 2008 and 2008 R2 versions. The best time to purchase is now. You can get the lowest price and lock in savings if you purchase Premium Assurance through June 2017. Prices will increase ov…
-
Office 365 security researchers: Double your bounties March-May 2017
by Guest MSRC Team- 0 replies
- 69 views
Microsoft strives to protect our customers and we’re constantly improving our security posture to meet their needs. We realize the desire of researchers and customers to security test our services to ensure they can trust us and our solutions. We also believe that if a researcher informs us of a security flaw in our Office 365 services, they should be awarded for protecting us. These discoveries along with our internal security testing efforts contribute to keeping our users safe. Keeping in line with our philosophy of protecting users and awarding researchers, we are pleased to announce an update to our Online Services bounty program. We will be giving out double rewa…
-
- 0 replies
- 1 view
Microsoft strives to protect our customers and we’re constantly improving our security posture to meet their needs. We realize the desire of researchers and customers to security test our services to ensure they can trust us and our solutions. We also believe that if a researcher informs us of a security flaw in our Office 365 services, they should be awarded for protecting us.
Last reply by PCHF Staff, -
SHA-1 Collisions Research
by Guest MSRC Team- 0 replies
- 77 views
Today, a group of eight researchers from across the security industry released a research report on SHA-1 that demonstrates for the first time, a “hash collision” for the full SHA-1 hash algorithm (called “SHAttered”). This is a significant step toward understanding this type of security issue, a milestone in cryptanalysis that has been underway for the past decade. The report website also includes a tool co-authored by my colleague Dan Shumow (Senior Software Development Engineer, Security & Cryptography, Microsoft Research) that can be used to detect the presence of a collision in a file. SHA-1 is used in digital certificates (TLS) and code signing applications. …
-
- 0 replies
- 1 view
Today, a group of eight researchers from across the security industry released a research report on SHA-1 that demonstrates for the first time, a “hash collision” for the full SHA-1 hash algorithm (called “SHAttered”). This is a significant step toward understanding this type of security issue, a milestone in cryptanalysis that has been underway for the past decade.
Last reply by PCHF Staff, -
Adobe Flash Player security vulnerability release
by Guest MSRC Team- 0 replies
- 67 views
Today, we released an Adobe Flash Player security update to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about these updates can be found on the Security Update Guide. MSRC team Continue reading...
-
MS17-005 - Critical: Security Update for Adobe Flash Player (4010250) - Version: 1.0
by Guest Microsoft Security- 0 replies
- 67 views
Severity Rating: Critical Revision Note: V1.0 (February 21, 2017): Bulletin published. Summary: This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. Continue reading...
-
- 0 replies
- 1 view
Today, we released an Adobe Flash Player security update to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about these updates can be found on the Security Update Guide. MSRC team
Last reply by PCHF Staff, -
- 1 follower
- 0 replies
- 479 views
TeamSpy is back and it's turning TeamViewer into the spying tool that no one wants. According to security firm Heimdal, a new spam campaign emerged over the weekend, carrying the TeamSpy malware which can give hackers full access to a compromised computer. This isn't a new type of malware whatsoever. In fact, back in 2013, it was wrecking havoc in countless computers. Back then, attackers were gathering information from victims, be them ordinary users or high profile individuals working in industries or research, or even diplomats. This time around, however, it seems that TeamViewer has not been compromised as it happened in the past, so reusing their password…
Last reply by starbuck, -
-
- FPCH Admin
- 1 follower
- 0 replies
- 813 views
Facebook just announced several tweaks to the way video will start performing on its service soon. However, in the name of enhancing “customer experience,” Facebook is adding one change that is likely to drive a significant number of users slightly crazy: Not only auto-playing videos, but making sure to do it with sound blaring. That’s part of a slate of announcements Facebook made today. Among them are new apps for “couch side” devices, like your AppleTV and Amazon Fire TV, as well as better display framing for vertical video. But right at the top, Facebook touts that it is about to make your news feed louder. “Videos in News Feed have previously played silently…
Last reply by allheart55 Cindy E, -
-
Are you still running a Windows Server technical preview?
by Guest Microsoft Windows Server- 0 replies
- 59 views
If you were one of the customers who took time to evaluate the technical previews of Windows Server last year, thank you! Your testing and feedback helped us improve and deliver a great release of Windows Server 2016 for general availability in October 2016. If you are still testing on one of these technical previews, we wanted to let you know about the great options to evaluate the generally available version of Windows Server 2016: Download a free 180-day evaluation version Try it in Azure Free Windows Server 2016 Virtual Labs on TechNet We continue to value your feedback, so please reach out to our User Voice or TechNet forums and let us know what you thi…
-
February 2017 security update release
by Guest MSRC Team- 0 replies
- 51 views
Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems. This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today. After considering all options, we made the decision to delay this month’s updates. We apologize for any inconvenience caused by this change to the existing plan. MSRC Continue reading...
-
- 0 replies
- 1 view
UPDATE: 2/15/17: We will deliver updates as part of the planned March Update Tuesday, March 14, 2017. Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems. This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.
Last reply by PCHF Staff,